Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
1. A method for using a network, the method comprising: receiving, at a secure element of a device, a request for usage data from the device; sending, by the secure element, the usage data to the device in response to the request, wherein the usage data enables the device to use the network after a reboot process, the device being previously enabled to use the network prior to the reboot process; applying, by the secure element, a timer to measure a delay time, wherein the device is configured to use the network only after the delay time has expired; and preventing, by the secure element, the usage of the network by the device until the delay time has expired, wherein the usage data is stored at the secure element prior to the timer being applied and while the timer is measuring the delay time, wherein the secure element performs the step of starting the timer when the secure element senses an attempt of the device to connect to the network and/or an attempt of the device for registering to the network before the secure element receives the request for usage data from the device, wherein until the delay time has expired and/or after the delay time has expired an external operator configures settings of the secure element, including settings of the timer, including the delay time, and/or settings of behavior, wherein the external operator configures the secure element via an over-the-air-interface, and wherein the secure element performs the step of analyzing a failure on a link between the network and the device.
This invention relates to secure network access control for devices, particularly focusing on preventing unauthorized network usage after a reboot. The problem addressed is ensuring that a device cannot immediately reconnect to a network after a reboot without proper authorization, which is critical for security and compliance in managed networks. The method involves a secure element within a device that stores usage data required for network access. When the device reboots, it requests this usage data from the secure element. The secure element provides the data but applies a configurable delay timer before allowing network access. The device can only use the network after this delay period expires. The timer is triggered when the secure element detects an attempt by the device to connect or register with the network, even before the usage data request is made. An external operator can remotely configure the secure element, including adjusting the delay time or modifying behavior settings, via an over-the-air interface. The secure element also monitors and analyzes link failures between the device and the network. The usage data remains stored in the secure element throughout the delay period, ensuring it is available once the timer expires. This approach enhances security by preventing immediate post-reboot network access while allowing controlled, authorized reconnection after verification.
2. The method according to claim 1 , wherein after the delay time has expired the secure element starts a process executed on the device for usage of the network, to register and/or connect to the network.
This invention relates to secure network access control for devices, particularly in scenarios where delayed or conditional network registration is required. The method involves a secure element, such as a hardware security module or trusted execution environment, managing network access permissions. The secure element enforces a delay period before allowing the device to register or connect to the network. After this delay expires, the secure element initiates a process on the device to establish network connectivity, ensuring that the device meets predefined security or operational criteria before access is granted. This approach prevents unauthorized or premature network usage, enhancing security in environments where devices must undergo verification, authentication, or other preparatory steps before being allowed to connect. The method may include additional security checks or configurations during the delay period to further validate the device's eligibility for network access. The secure element acts as a gatekeeper, controlling when and how the device interacts with the network, which is particularly useful in enterprise, IoT, or mobile device management scenarios where strict access policies are enforced.
3. The method according to claim 1 , wherein until the delay time has expired the secure element performs the step of blocking the device for usage of the network, for registering to the network and/or for connecting to the network.
A method for enhancing security in a mobile device involves a secure element that controls network access based on a delay time. The secure element is a tamper-resistant hardware component, such as a SIM card or embedded chip, that enforces security policies. The method addresses the problem of unauthorized or malicious use of a mobile device by preventing network access until a predefined delay time has elapsed. During this delay period, the secure element actively blocks the device from using, registering to, or connecting to the network. This prevents immediate unauthorized access, even if the device is stolen or compromised. The delay time can be set based on security policies, user preferences, or network requirements. Once the delay time expires, the secure element allows normal network operations. This method ensures that unauthorized users cannot immediately exploit the device, providing an additional layer of security beyond traditional authentication mechanisms. The secure element may also interact with other security features, such as biometric verification or remote lock commands, to further enhance protection. The method is particularly useful for preventing unauthorized network access in scenarios where physical security of the device is compromised.
4. The method according to claim 1 , wherein the secure element logs usage of the network by the device.
A system and method for monitoring and logging network usage by a device through a secure element. The secure element, which is a tamper-resistant hardware component, is integrated into the device and is responsible for securely storing and processing sensitive data. The secure element monitors the device's network activity, including data transmission and reception, and logs this usage information. The logging process involves recording details such as the type of network activity, the amount of data transferred, and the timing of the activity. This logged data is stored securely within the secure element to prevent unauthorized access or tampering. The system ensures that network usage is tracked in a reliable and secure manner, providing transparency and accountability for the device's network interactions. The secure element may also enforce usage policies or limits based on the logged data, ensuring compliance with predefined network usage rules. This approach enhances security and trust in network communications by leveraging the secure element's inherent protection mechanisms.
5. The method according to claim 4 , wherein the secure element starts the timer based on the log, based on a result from a previous usage attempt, including a registration and/or a connecting attempt.
A method for managing secure element operations in a communication system involves tracking usage attempts, such as registration or connection attempts, and using this data to control a timer within the secure element. The secure element monitors a log of these attempts to determine whether to initiate or adjust a timer. This timer may be used to regulate access, enforce security policies, or optimize performance based on historical usage patterns. The method ensures that the secure element dynamically responds to previous usage outcomes, improving reliability and security in authentication or communication processes. By analyzing past attempts, the system can prevent unauthorized access, reduce unnecessary retries, or streamline legitimate operations. The approach enhances security by leveraging historical data to make real-time decisions, ensuring that the secure element operates efficiently while maintaining robust protection against misuse.
6. The method according to claim 1 , wherein the secure element performs the step of applying a random generator to set the delay time.
A method for enhancing security in electronic transactions involves a secure element that introduces a variable delay to prevent timing-based attacks. The secure element generates a random delay time using a random number generator, then applies this delay before executing a cryptographic operation or responding to a transaction request. This randomness disrupts predictable timing patterns that attackers might exploit to infer sensitive information, such as cryptographic keys or transaction details. The secure element may be embedded in a smart card, mobile device, or other secure hardware module. The random delay is applied dynamically, ensuring that each transaction or operation has a unique timing profile, making it difficult for attackers to correlate timing measurements with specific operations. This technique is particularly useful in payment systems, authentication protocols, and other security-critical applications where timing attacks pose a significant risk. The random delay can be adjusted based on system requirements, such as performance constraints or security thresholds, while maintaining the unpredictability needed to thwart timing-based exploits.
7. The method according to claim 1 , wherein the secure element sets the delay time according to an individual value.
Digital security and secure data processing. This invention addresses the need for enhanced security in electronic devices by controlling access or operations based on a dynamic time delay. A secure element within a device is configured to establish a delay period. This delay period is not a fixed value but is determined based on a specific, unique attribute or characteristic associated with the individual user, device, or transaction. This individual value is used as the basis for calculating or setting the duration of the delay. The implementation of an individually set delay time enhances security by introducing variability and unpredictability, potentially thwarting attempts to circumvent security measures through fixed timing assumptions.
8. The method according to claim 1 , wherein until the delay time has expired the secure element sends invalid registering data to prevent usage of the network.
Communication network security. This invention prevents network usage by unauthorized or potentially compromised devices during a critical security event. Specifically, a secure element, upon expiration of a predetermined delay time, transmits invalid registering data. This invalid data actively hinders or prevents the device's ability to register with and therefore utilize the communication network. The sending of this invalid data serves as a mechanism to enforce a security protocol or to maintain network integrity by temporarily blocking access from devices that may be exhibiting suspicious behavior or are not yet fully authenticated.
9. The method according to claim 1 , wherein after the delay time has expired the secure element initiates a new process for using to network.
A method for managing network access in a secure element involves controlling when the secure element can connect to a network. The secure element monitors a delay time, which is a predefined period during which network access is restricted. Once this delay time expires, the secure element initiates a new process to establish network connectivity. This process may include authentication, authorization, or other security measures to ensure safe and controlled access to the network. The method ensures that the secure element only attempts to connect to the network after the delay period has passed, preventing unauthorized or premature access. The delay time can be set based on security policies, usage requirements, or other factors to balance security and functionality. The secure element may be a hardware or software component designed to securely store and manage sensitive data, such as cryptographic keys or authentication credentials. The method helps protect the secure element and the network from potential threats by enforcing a waiting period before allowing network interactions. This approach is useful in environments where strict access control is necessary, such as financial transactions, mobile payments, or secure communications.
10. A secure element of a device that uses a network, the secure element comprising: at least one processor; a computer readable hardware storage device having stored thereon computer-executable instructions which, when executed by the at least one processor, cause the secure element to perform the following: receive a request for usage data from the device, the usage data including data that is used to connect the device to the network; send the usage data to the device in response to the request, wherein the usage data enables the device to use the network after a reboot process, the device being previously enabled to use the network prior to the reboot process; apply a timer to measure a delay time, wherein the device is configured to use the network only after the delay time has expired; and prevent the usage of the network by the device until the delay time has expired, wherein the usage data is stored at the secure element prior to the timer being applied and while the timer is measuring the delay time, wherein the secure element performs the step of starting the timer when the secure element senses an attempt of the device to connect to the network and/or an attempt of the device for registering to the network before the secure element receives the request for usage data from the device, wherein until the delay time has expired and/or after the delay time has expired an external operator configures settings of the secure element, including settings of the timer, including the delay time, and/or settings of behavior, wherein the external operator configures the secure element via an over-the-air-interface, and wherein the secure element performs the step of analyzing a failure on a link between the network and the device.
A secure element for a network-connected device includes a processor and a storage device with executable instructions. The secure element manages network usage data, which is required for the device to connect to the network. When the device requests this data, the secure element provides it, allowing the device to reconnect to the network after a reboot. The secure element also enforces a delay period before the device can use the network, starting the timer automatically when it detects an attempt to connect or register with the network. During this delay, the usage data remains stored in the secure element. An external operator can remotely configure the secure element, including adjusting the delay time or modifying its behavior, via an over-the-air interface. Additionally, the secure element monitors and analyzes failures in the network link between the device and the network. This system ensures controlled network access, prevents unauthorized usage, and allows for remote management of security policies.
Unknown
February 4, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.